beaverdownunder writes: Alexander Gostev, head of the global research and analysis team at Kaspersky, says that “tens of thousands of sites powered by WordPress were compromised. How this happened is unclear. The main theories are that bloggers were using a vulnerable version of WordPress or they had installed the ToolsPack plug-in.”